MOQA Privacy Policy
Last Updated: October 18, 2025
Operated by BOMAD LLC
www.moqa.me | privacy@moqa.me | Los Angeles, CA USA
​
1. Introduction
MOQA helps people build healthier digital habits. Your privacy is part of that mission.
This Policy explains how we collect, use, share, and protect your information when you use the MOQA app or visit moqa.me (the “Service”). It’s incorporated into our Terms & User Agreement.
Controller: For data-protection purposes, BOMAD LLC is the “controller” (GDPR) / “business” (CCPA). Some vendors act as our “processors” or “service providers.”
​
2. Our Privacy Principles
-
Minimal data – we collect only what’s needed to run and improve MOQA.
-
User control – you choose what to share and can request deletion.
-
No sales or ad brokers – we never sell or share for advertising.
-
Security first – encryption, access limits, regular reviews.
-
Transparency – plain-language explanations, no fine-print traps.
3. Information We Collect
3.1 Account Data
• Email (if you register or redeem rewards)
• Username /display name
• Device and app metadata for authentication, fraud prevention, and diagnostics
3.2 App Interaction Data
High-level technical information about app performance — load times, crashes, and aggregate feature use. We do not collect private content or personal communications.
​
3.3 Voluntary Data (Rewards Program / “Bank It”)
If you opt in, you may upload a QR code summarizing your own general device-use patterns to help you track mindful progress and confirm reward eligibility. Participation is optional and not required to use MOQA.
​
3.4 Support & Communications
Messages you send us (support requests, feedback) and diagnostics you voluntarily share.
3.5 Community / Public Areas (if enabled)
Any content you post publicly may be visible to others.
​
4. How We Use Information
-
Operate and improve the Service
-
Provide mindful-use insights and progress feedback
-
Verify rewards eligibility and deliver Beans or perks
-
Maintain security and prevent fraud or abuse
-
Respond to support requests and account communications
-
Send product tips and updates with your consent
-
We do not sell data or use it for third-party advertising.
​
5. Rewards Program / Bank It (Optional)
Bank It is a self-reporting reflection tool that encourages awareness and accountability.
-
Completely optional: MOQA functions fully without participation.
-
What you provide: a QR code summarizing your own general device-use patterns to help you track mindful progress and confirm reward eligibility.
-
Why we use it: to verify goal completion, improve feedback accuracy, and deliver rewards.
-
Data limits: used only for insights, verification, and fairness — never for advertising or resale.
-
Retention: kept for as long as reasonably necessary to operate the Service, verify rewards, maintain records, or comply with legal and business obligations.
6. Legal Bases (GDPR / UK GDPR)
Our lawful bases include contract (providing the Service), consent (optional features and marketing), legitimate interests (security and analytics), and legal obligation (compliance).
​
7. How We Share Information (Limited)
​
We share only what's necessary to operate MOQA.
-
Hosting & Storage
Shared with: Claud service providers
Use: Store and run the app securely (encrypted in transit and at rest)
-
Email & Notifications
Shared with: Claud service providers
Use: Send service emails and opt-in updates only
-
Analytics (Aggregate)
Shared with: Internal product team
Use: Understand feature performance - never for ads or tracking
-
Reward Fulfillment
Shared with: Gift-card or perk issuers
Use: Deliver rewards and minimal necessary information
-
Compliance
Shared with: Authorities (if legally required)
Use: Only when responding to a valid legal process
​
We do not sell personal information or share data for advertising.
​
8. Data Retention & Deletion
Data is kept for as long as reasonably necessary to operate MOQA, verify rewards, maintain records, and comply with legal requirements. You may request deletion via privacy@moqa.me (after identity verification).
​
9. Security
TLS/HTTPS, encryption at rest, least-privilege access, auditing. If a breach poses material risk, we’ll notify affected users and outline remedies.
​
10. Your Rights & Controls
Depending on jurisdiction, you may access, correct, delete, restrict, or export data. Opt out of marketing or Rewards any time via privacy@moqa.me.
​
11. Cookies & Do Not Track
We use minimal cookies for login and preferences. No advertising trackers. There’s no industry standard for Do Not Track; we don’t respond to DNT signals, but you can disable cookies in your browser or device settings.
​
12. Children’s Privacy (COPPA)
MOQA is not directed to children under 13 and does not knowingly collect their data. If you believe a child has submitted information, contact privacy@moqa.me for deletion.
​
13. International Transfers
Data may be processed in the U.S. or other locations where vendors operate. We use appropriate safeguards (e.g., Standard Contractual Clauses) for cross-border transfers.
​
14. Social Features & Public Forums
If you link social accounts or post publicly, their policies apply. Your posts may be public or searchable. We can assist with removal where feasible.
​
15. Marketing & Service Communications
Account and security emails are mandatory. Promotional emails require your consent and include opt-out links. We comply with CAN-SPAM.
​
16. Corporate Transactions (M&A / Business Transfers)
If BOMAD LLC undergoes a merger, acquisition, financing, or asset sale, we may transfer data as part of that process. Any successor must honor this Policy or offer equal protection. Users will be notified of material changes.
​
17. California Residents (CCPA / CPRA)
These additional disclosures apply to California residents under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA).
​
17.1 Notice of Collection (Last 12 Months)
We may have collected these categories of personal information: Identifiers (name, email, IP, device ID), Customer Records (contact details, reward delivery info), Commercial Information (subscriptions, redemptions), Internet Activity (app interactions), Audio/Visual (optional profile images), and Inferences (engagement trends). Sources: you, your device, and service providers. We collect this data to operate MOQA, verify rewards, and improve user experience.
​
17.2 Right to Know, Access, Correct, and Delete
You may request that we disclose, correct, or delete personal information we hold about you. Email privacy@moqa.me and specify your request type. We’ll acknowledge receipt within 10 days and verify your identity before acting.
​
17.3 Right to Opt-Out of Sale or Sharing
MOQA does not sell or share personal information for cross-context behavioral advertising. If that ever changes, we’ll update this Policy and add a “Do Not Sell or Share My Personal Information” link.
​
17.4 Authorized Agents
You may appoint an authorized agent to make requests on your behalf. We require proof of authorization and may verify your identity directly.
​
17.5 Non-Discrimination
You will not receive discriminatory treatment for exercising your privacy rights.
​
17.6 Shine the Light Disclosure
We do not disclose personal information to third parties for their direct marketing purposes. If that ever changes, you may request details under Cal. Civ. Code § 1798.83 by emailing privacy@moqa.me.
​
18. Third-Party Links
External sites linked from MOQA have their own policies. Review those before sharing information.
​
19. Complaints & Disputes
Email privacy@moqa.me. We’ll work to resolve issues directly. Where law allows, you may lodge a complaint with your local Data Protection Authority.
​
20. Changes to This Policy
We may update this Policy periodically. The “Last Updated” date reflects the current version. Material changes will be announced via email or in-app notice. Continued use after changes means acceptance.
21. Contact Us
BOMAD LLC | Attn: Privacy Officer
Los Angeles, California, USA